Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jROhvRfFm4_70WrezNFOBoewFkY.roa
File: jROhvRfFm4_70WrezNFOBoewFkY.roa (raw, json)
Hash identifier: Z7itUJHyS5HjxSbbZpLWKdDQj+J2qGCf+fe/v88PXAU=
Subject key identifier: 8D:13:A1:BD:17:C5:9B:8F:FB:D1:6A:DE:CC:D1:4E:06:87:B0:16:46
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 08C512FE
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jROhvRfFm4_70WrezNFOBoewFkY.roa
Signing time: Sat 01 Jan 2022 14:01:58 +0000
ROA not before: Sat 01 Jan 2022 14:01:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212279
IP address blocks: 2a0e:8f02:f013::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147133182 (0x8c512fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 14:01:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d13a1bd17c59b8ffbd16adeccd14e0687b01646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c4:f5:60:25:05:fb:70:61:3a:e6:1a:3f:9f:
f2:27:84:c6:da:84:9b:76:fd:cf:97:42:62:15:d7:
4a:ea:ce:a6:e9:08:52:48:95:55:e9:48:8d:52:6f:
9d:d2:41:41:e3:83:b4:2d:84:81:c1:3b:e5:ac:28:
c0:c4:2d:89:27:3c:75:54:79:25:40:aa:f4:51:ea:
d5:e2:e1:5f:fc:2f:0a:5e:f6:64:7f:ed:3b:70:82:
39:05:75:1b:2c:38:ae:9f:21:c3:e7:51:e2:a7:46:
25:5a:f7:15:0f:d1:1e:90:c8:59:39:d5:b4:b7:d2:
8d:61:f2:f1:47:05:ef:c2:4f:6d:22:5d:9b:3b:20:
13:b9:33:53:5c:2d:b7:df:03:5a:8b:d6:7a:13:00:
d0:82:4c:52:5e:53:ee:f6:6a:b1:80:ef:0a:92:b5:
d1:00:2d:02:b2:ef:19:1a:7d:5b:94:b6:96:a8:31:
d6:1e:0a:e2:63:3c:f9:2c:2c:ec:21:bf:8a:7a:74:
fd:6a:08:61:ce:5f:87:06:b3:ba:59:f1:9d:b4:63:
34:78:a3:15:37:f2:76:19:aa:23:94:04:a3:ea:fa:
05:88:50:84:95:16:09:51:20:eb:75:72:7e:5c:d9:
b9:2a:bd:01:84:81:c7:eb:cb:28:d0:28:3e:cf:c6:
d1:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:13:A1:BD:17:C5:9B:8F:FB:D1:6A:DE:CC:D1:4E:06:87:B0:16:46
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/jROhvRfFm4_70WrezNFOBoewFkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f013::/48
Signature Algorithm: sha256WithRSAEncryption
63:45:38:f7:f2:70:79:13:78:7a:e2:da:87:11:5f:1e:cc:34:
b3:1e:87:38:62:db:82:a5:de:d2:9a:9e:e0:d3:ad:8f:23:95:
01:58:36:7a:2f:33:d6:7a:78:09:44:0d:e4:0c:c2:4d:33:46:
27:08:de:a5:cb:2c:81:3b:27:49:fb:65:63:8d:39:da:25:bd:
6d:dd:85:84:c4:b1:95:3a:56:92:0e:90:cc:a8:8f:f7:8d:59:
e9:da:49:5e:9d:ae:e4:63:d4:72:eb:bb:00:23:0d:59:be:c3:
0d:35:e6:86:d0:b6:e1:5e:5f:82:98:81:0f:a6:f0:6a:10:e3:
8e:10:03:7d:83:02:bd:09:3b:6d:a8:13:2f:42:93:12:18:a8:
6a:07:f3:47:7a:1d:2f:2b:35:06:38:e9:43:f8:96:fe:c3:96:
93:8d:2e:55:e9:62:43:24:8b:53:69:1b:74:cc:63:94:9e:17:
47:14:9f:d6:a3:5d:b6:35:3a:cc:de:3f:d4:62:18:7b:c7:ae:
c8:b8:28:1a:0c:08:50:c8:f7:a3:38:1e:6d:d0:68:52:71:23:
8a:aa:83:99:1a:58:95:70:9e:10:5e:2a:b8:b8:ce:e6:e5:ba:
b9:95:96:eb:5b:b2:7a:55:5d:c3:c9:37:88:df:ba:0c:0c:bf:
82:6a:e8:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:12 2023 by rpki-client on console-ams.rpki-client.org